Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2002-0980

CVE-2002-0980

UNKNOWN

The Web Folder component for Internet Explorer 5

Published Aug 23, 2002

Modified 1 years ago

Details

The Web Folder component for Internet Explorer 5.5 and 6.0 writes an error message to a known location in the temporary folder, which allows remote attackers to execute arbitrary code by injecting it into the error message, then referring to the error message file via a mhtml: URL.

References

http://marc.info/?l=bugtraq&m=102942234427691&w=2

http://marc.info/?l=ntbugtraq&m=102937705527922&w=2

http://marc.info/?l=vuln-dev&m=102943486811091&w=2

http://www.iss.net/security_center/static/9881.php

http://www.securityfocus.com/bid/5473

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-014

https://www.cve.org/CVERecord?id=CVE-2002-0980

CVSS Analysis

CVSS v2.0

7.5

Exploitability

Access Vector

NetworkAV:N

Access Complexity

LowAC:L

Authentication

NoneAu:N

Impact

Confidentiality

PartialC:P

Integrity

PartialI:P

Availability

PartialA:P

7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P

Ecosystems

Timeline

PublishedAug 23, 2002

ModifiedAug 8, 2024

CVE-2002-0980 | Mondoo Vulnerability Intelligence